Mailinglist Archive: opensuse (3506 mails)
| < Previous | Next > |
pam_ldap_filter and pam_login_attribute
- From: "rejaine@xxxxxxxxxxxxxxxx" <rejaine@xxxxxxxxxxxxxxxx>
- Date: Mon, 25 Sep 2006 19:06:35 +0000 (UTC)
- Message-id: <1159211178.10187.31.camel@xxxxxxxxxxxxxxxxx>
Hi !
I'm trying to change pam_login_attribute to cn in /etc/ldap.conf to
authenticate users from common_name but don't works....
My /etc/ldap.conf is:
<snip>
ssl no
nss_map_attribute uniqueMember member
pam_filter objectclass=posixAccount
pam_login_attribute cn
nss_base_passwd dc=xxx,dc=com
nss_base_shadow dc=xxx,dc=com
nss_base_group dc=xxx,dc=com
<snip>
/etc/pam.d/login
#%PAM-1.0
auth required pam_securetty.so
auth include common-auth
auth required pam_nologin.so
auth required pam_mail.so
account include common-account
password include common-password
session include common-session
session required pam_resmgr.so
When I try to login using cn like "John_Lennon" , I give this error:
login[11170]: User not known to the underlying authentication module
If "pam_login_attribute uid" is used, all works fine...
What's wrong?
| < Previous | Next > |